Item library security on NTFS server

Protect item libraries

Item libraries can be protected from unauthorized changes by setting an access control list (ACL) on each folder. ACLs are only allowed on NTFS file systems. We recommend that item libraries are not defined on FAT file systems.

To only allow a server to write files to item library directories, set the following ACL attributes:

• System: Full Control

• Administrators: Read Access

• Owner: Read Access

Do not give any users Write, Change, or Delete access.

Library access process

The library access process Dimensions Listener Service is responsible for servicing PCMS_SDP protocol connection requests. Messages generated by this service are placed in the Windows Server Event Application log.

If you locate item libraries on a disk that is mounted with non-standard access permissions, you may need to change the login identity of Dimensions Listener Service. To change the identity:

1. Open Services.

2. Right-click Dimensions Listener Service and select Properties.

3. On the Log On tab, select This account and enter the new identity.

Item library node location

Item libraries should be located on network nodes that can handle the load and are local to the users that most often access them.